94427deb9d
GitOrigin-RevId: f91ee3065de91a3531329a674a45ddcb3467a650
110 lines
3.2 KiB
Bash
Executable file
110 lines
3.2 KiB
Bash
Executable file
#! @runtimeShell@
|
|
# shellcheck shell=bash
|
|
|
|
set -e
|
|
|
|
# Re-exec ourselves in a private mount namespace so that our bind
|
|
# mounts get cleaned up automatically.
|
|
if [ -z "$NIXOS_ENTER_REEXEC" ]; then
|
|
export NIXOS_ENTER_REEXEC=1
|
|
if [ "$(id -u)" != 0 ]; then
|
|
extraFlags="-r"
|
|
fi
|
|
exec unshare --fork --mount --uts --mount-proc --pid $extraFlags -- "$0" "$@"
|
|
else
|
|
mount --make-rprivate /
|
|
fi
|
|
|
|
mountPoint=/mnt
|
|
system=/nix/var/nix/profiles/system
|
|
command=("$system/sw/bin/bash" "--login")
|
|
silent=0
|
|
|
|
while [ "$#" -gt 0 ]; do
|
|
i="$1"; shift 1
|
|
case "$i" in
|
|
--root)
|
|
mountPoint="$1"; shift 1
|
|
;;
|
|
--system)
|
|
system="$1"; shift 1
|
|
;;
|
|
--help)
|
|
exec man nixos-enter
|
|
exit 1
|
|
;;
|
|
--command|-c)
|
|
command=("$system/sw/bin/bash" "-c" "$1")
|
|
shift 1
|
|
;;
|
|
--silent)
|
|
silent=1
|
|
;;
|
|
--)
|
|
command=("$@")
|
|
break
|
|
;;
|
|
*)
|
|
echo "$0: unknown option \`$i'"
|
|
exit 1
|
|
;;
|
|
esac
|
|
done
|
|
|
|
if [[ ! -e $mountPoint/etc/NIXOS ]]; then
|
|
echo "$0: '$mountPoint' is not a NixOS installation" >&2
|
|
exit 126
|
|
fi
|
|
|
|
mkdir -p "$mountPoint/dev" "$mountPoint/sys"
|
|
chmod 0755 "$mountPoint/dev" "$mountPoint/sys"
|
|
mount --rbind /dev "$mountPoint/dev"
|
|
mount --rbind /sys "$mountPoint/sys"
|
|
|
|
# modified from https://github.com/archlinux/arch-install-scripts/blob/bb04ab435a5a89cd5e5ee821783477bc80db797f/arch-chroot.in#L26-L52
|
|
chroot_add_resolv_conf() {
|
|
local chrootDir="$1" resolvConf="$1/etc/resolv.conf"
|
|
|
|
[[ -e /etc/resolv.conf ]] || return 0
|
|
|
|
# Handle resolv.conf as a symlink to somewhere else.
|
|
if [[ -L "$resolvConf" ]]; then
|
|
# readlink(1) should always give us *something* since we know at this point
|
|
# it's a symlink. For simplicity, ignore the case of nested symlinks.
|
|
# We also ignore the possibility of `../`s escaping the root.
|
|
resolvConf="$(readlink "$resolvConf")"
|
|
if [[ "$resolvConf" = /* ]]; then
|
|
resolvConf="$chrootDir$resolvConf"
|
|
else
|
|
resolvConf="$chrootDir/etc/$resolvConf"
|
|
fi
|
|
fi
|
|
|
|
# ensure file exists to bind mount over
|
|
if [[ ! -f "$resolvConf" ]]; then
|
|
install -Dm644 /dev/null "$resolvConf" || return 1
|
|
fi
|
|
|
|
mount --bind /etc/resolv.conf "$resolvConf"
|
|
}
|
|
|
|
chroot_add_resolv_conf "$mountPoint" || echo "$0: failed to set up resolv.conf" >&2
|
|
|
|
(
|
|
# If silent, write both stdout and stderr of activation script to /dev/null
|
|
# otherwise, write both streams to stderr of this process
|
|
if [ "$silent" -eq 1 ]; then
|
|
exec 2>/dev/null
|
|
fi
|
|
|
|
# Run the activation script. Set $LOCALE_ARCHIVE to suppress some Perl locale warnings.
|
|
LOCALE_ARCHIVE="$system/sw/lib/locale/locale-archive" IN_NIXOS_ENTER=1 chroot "$mountPoint" "$system/activate" 1>&2 || true
|
|
|
|
# Create /tmp. This is needed for nix-build and the NixOS activation script to work.
|
|
# Hide the unhelpful "failed to replace specifiers" errors caused by missing /etc/machine-id.
|
|
chroot "$mountPoint" "$system/sw/bin/systemd-tmpfiles" --create --remove -E 2> /dev/null || true
|
|
)
|
|
|
|
unset TMPDIR
|
|
|
|
exec chroot "$mountPoint" "${command[@]}"
|